ID CVE-2001-0836
Summary Buffer overflow in Oracle9iAS Web Cache 2.0.0.1 allows remote attackers to execute arbitrary code via a long HTTP GET request.
References
Vulnerable Configurations
  • Oracle Oracle9iAS Web Cache 2.0.0.1
    cpe:2.3:a:oracle:application_server_web_cache:2.0.0.1
CVSS
Base: 7.5 (as of 01-01-2004 - 00:00)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
exploit-db via4
description Oracle9iAS Web Cache 2.0 Buffer Overflow Vulnerability. CVE-2001-0836. Remote exploit for windows platform
id EDB-ID:21121
last seen 2016-02-02
modified 2001-10-18
published 2001-10-18
reporter andreas
source https://www.exploit-db.com/download/21121/
title Oracle9iAS Web Cache 2.0 - Buffer Overflow Vulnerability
nessus via4
  • NASL family Databases
    NASL id ORACLE9IAS_TOO_LONG_URL.NASL
    description It may be possible to make the Oracle9i application server crash or execute arbitrary code by sending it a too long url specially crafted URL.
    last seen 2019-02-21
    modified 2018-07-16
    plugin id 11081
    published 2002-08-14
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=11081
    title Oracle Application Server Web Cache HTTP Request Overflow
  • NASL family Web Servers
    NASL id WWW_TOO_LONG_URL.NASL
    description The remote web server crashes when it receives a too long URL. It might be possible to make it execute arbitrary code through this flaw.
    last seen 2019-02-21
    modified 2018-08-07
    plugin id 10320
    published 1999-06-22
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=10320
    title Web Server Long URL Handling Remote Overflow DoS
  • NASL family Web Servers
    NASL id WWW_TOO_LONG_USERAGENT.NASL
    description It was possible to kill the web server by sending an invalid GET request with a long User-Agent field. A remote attacker may exploit this vulnerability to make the web server crash continually or possibly execute arbitrary code.
    last seen 2019-02-21
    modified 2018-11-15
    plugin id 11069
    published 2002-08-13
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=11069
    title Web Server HTTP User-Agent Header Handling Remote Overflow
refmap via4
bugtraq
  • 20011018 def-2001-30
  • 20011024 Oracle9iAS Web Cache Overflow Vulnerability
cert CA-2001-29
cert-vn VU#649979
confirm http://otn.oracle.com/deploy/security/pdf/webcache.pdf
osvdb 5534
xf oracle-appserver-http-bo(7306)
Last major update 17-10-2016 - 22:12
Published 06-12-2001 - 00:00
Last modified 09-10-2017 - 21:29
Back to Top